Hoxline Gate
Hoxline holds the evidence ceiling with the artifact so wording cannot climb above what evidence supports.
AI security automation cockpit
A working detection workflow turns fast, AI-assisted security work into reviewer-ready artifacts. Hoxline keeps public wording evidence-scoped as the loop moves.
Runtime, signal, production, customer, and approval claims stay gated until evidence is promoted. Controlled validation is the current ceiling; this website is the reviewer surface.
Hoxline holds the evidence ceiling with the artifact so wording cannot climb above what evidence supports.
fresh from src/data/governanceSaves.ts @ 834c3d2
fresh - hawkinsoperations-website 834c3d2fresh from proof/records/reviewer-metrics-pipeline-v1-summary.json @ 70c6792
fresh - hawkinsoperations-proof 70c6792fresh from proof/records/reviewer-metrics-pipeline-v1-summary.json @ 70c6792
fresh - hawkinsoperations-proof 70c6792fresh from proof/records/reviewer-metrics-pipeline-v1-summary.json @ 70c6792
fresh - hawkinsoperations-proof 70c6792fresh from proof/records/reviewer-metrics-pipeline-v1-summary.json @ 70c6792
fresh - hawkinsoperations-proof 70c6792Inspect / download / clone / run
Generated status prevents stale website numbers from becoming accidental authority. The source routes and commands make the review path inspectable instead of presentation-only.
Generated website input; not proof authority.
git clone https://github.com/HawkinsOperations/hoxline.gitWorking directory after clone: hoxline repo root
npm run public-status:generateRepo: HawkinsOperations/hawkinsoperations-website. Working directory: hawkinsoperations-website repo root.
npm run public-status:verifyRepo: HawkinsOperations/hawkinsoperations-website. Working directory: hawkinsoperations-website repo root.
npm run check:siteRepo: HawkinsOperations/hawkinsoperations-website. Working directory: hawkinsoperations-website repo root.
npm run typecheckRepo: HawkinsOperations/hawkinsoperations-website. Working directory: hawkinsoperations-website repo root.
npm run test:visualRepo: HawkinsOperations/hawkinsoperations-website. Working directory: hawkinsoperations-website repo root.
These commands are review paths in their owning repositories. Website rendering displays the route; it does not convert command output into proof authority.
Interactive product loop
Tap any stage in the Hoxline loop to inspect what exists, the AI role, the output artifact, and the next handoff. Runtime and signal claims stay gated until evidence is promoted.
$ ai draft --task ho-det-001 → candidate.draft
Flagship product
HawkinsOperations is not just a portfolio. Hoxline runs a controlled ProofOps loop for HO-DET-001 and emits bounded reviewer artifacts while runtime, signal, public release, production, customer, and approval claims remain gated.
stage_status_distribution
Capability Visual Data Pack v1 exposes the loop as status data, not as a flat warning list.
generated_outputs_chart
Reviewer-readable outputs are surfaced as artifacts. They are routes to inspect, not proof promotion.
json
Target reader: reviewer or website data loader.
Open artifact ->claim_decision_chart
Toggle the decision families. Blocked claims are visible as boundaries, not as product claims.
allowed
One allowed controlled-validation claim is present in the visual data pack.
Current proof spine
HawkinsOperations exposes built work first: proof records, controlled validation, platform ledgers, governed metrics, reviewer routes, and claim-boundary controls are separated so reviewers can inspect the system without trusting the website presentation.
Generated public-status rendering input: fresh: under 336-hour freshness window. Counts route to owning proof, platform, and validation records; this website does not authorize them.
Proof records, proof cards, proof packs, reviewer maps, accomplishment ledgers, and authority-boundary case studies control what can be claimed.
Local pipelines, parity checks, case-packet contracts, claim scanners, activity ledgers, and CI gates turn detection claims into repeatable checks.
Factory commands, ledger gates, state manifests, runtime candidates, recoverability drills, and SOAR packet contracts turn detections into governed workflow artifacts.
Proof loop
Each stage shows what happens, what control sits over it, and what gets blocked. The verifier owns pass and fail; human review owns merge authority.
CLAIM FIREWALLUnsupported public security claims fail before they ship.Open the public wording gate that keeps website rendering below proof authority.Inspect Claim Firewall ->Cyber Kill Chain / MITRE ATT&CK
Use attack-lifecycle mapping to orient detection intent, ATT&CK context, validation state, and claim ceilings. The map helps reviewers navigate the system; it does not prove live coverage or runtime signal.
Boundary. Mapping is reviewer navigation. Validation records and proof boundaries authorize claims.
Inspect coverage mapGovernance Saves · generated from source records
72 public-facing records from GS-001 through GS-080 source range. Private-only records are excluded from this surface.
| Category | Count | What it covers |
|---|---|---|
| Claim boundary | 16 | Public copy was downgraded, narrowed, or held to match repo-visible evidence — never inflated to runtime, signal, or production wording. |
| Runtime boundary | 7 | Private runtime evidence, mirror traffic, and legacy automation were kept out of public runtime/signal claims. |
| Validator hardening | 8 | Review-thread fixes converted verifier edge cases into deterministic fail-closed paths before merge. |
| AI authority | 2 | AI output stayed support-only. Verifiers enforce human review and block AI-decided disposition. |
| Merge authority | 13 | Green CI never became merge authority. Review, scope, resolved threads, and human approval stayed above checks. |
| Evidence protection | 3 | Non-public evidence, host-local paths, and operator notes were kept off public surfaces and out of public proof. |
| Release gate | 2 | Release wording, checksums, and reviewer-package state were gated before any "approved release" claim could surface. |
| Branch hygiene | 16 | Branch divergence, dirty trees, wrong-branch preflights, and direct-main pushes were stopped before they touched source truth. |
| Workflow hardening | 5 | Required-check rulesets, audit findings, and CODEOWNERS reality were treated as enforcement evidence only when verified. |
Private-only records are excluded from this surface.
From cockpit to receipts
Every claim on this site is meant to be inspectable. Artifacts is the evidence bay: each card routes to a receipt and states what it supports and what it does not prove. Website rendering is not proof.
Open the evidence bay